CVE-2017-11732

CVE-2017-11732

EPSS 1.1%

A heap-based buffer overflow vulnerability was found in the function dcputs (called from decompileIMPLEMENTS) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://github.com/libming/libming/issues/80 https://lists.debian.org/debian-lts-announce/2018/01/msg00014.html http://somevulnsofadlab.blogspot.jp/2017/07/libmingheap-buffer-overflow-in-dcputs.html https://security.gentoo.org/glsa/201904-24